Απόρρητο

Last updated: June 2026

Protecting your personal data matters to us. Below we explain the nature, scope and purpose of the processing carried out via this website and the booking request.

Controller

Bodo Kremmer, Carpe Diem, P.O. Box 6651, 85300 Zipari, Kos, Greece. Email: contact@carpediemkos.holiday.

Visiting the website (hosting & server logs)

This website is hosted by Cloudflare. When you visit, technically necessary data is processed (e.g. IP address, date and time, page requested, browser type) to ensure secure and stable operation.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a functional, secure website).

Booking request

If you use the request form, we process the data you provide (name, email, optionally phone, travel dates, selected unit and message) in order to handle your request and make you an offer.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures). The data is deleted as soon as it is no longer required and no statutory retention obligations apply.

Booking via Booking.com and Airbnb

Availability is synchronised with Booking.com and Airbnb (calendar sync). If you book via one of these platforms, their own privacy policies additionally apply; the respective platform is responsible for the processing carried out there.

Cookies and analytics

We use technically necessary cookies only where they are required to operate the site. Analytics (e.g. Google Analytics) is carried out solely if you have given prior explicit consent (Art. 6(1)(a) GDPR and the applicable cookie rules).

You can withdraw your consent at any time with effect for the future.

Payments

Should online payment be offered in future, it will be processed via the payment provider Stripe. Payment data is transmitted directly to Stripe; we ourselves do not store full payment details.

Recipients and transfers to third countries

We use Cloudflare as a processor to provide the website. This may involve a transfer to third countries (including the USA), safeguarded by appropriate guarantees (EU Standard Contractual Clauses).

Your rights

You have the following rights regarding your personal data. To exercise them, please contact the address above:

  • Access (Art. 15 GDPR)
  • Rectification (Art. 16 GDPR)
  • Erasure (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection to processing (Art. 21 GDPR)

Right to complain

You have the right to lodge a complaint with a data protection supervisory authority — in Greece, the Hellenic Data Protection Authority (Αρχή Προστασίας Δεδομένων Προσωπικού Χαρακτήρα, www.dpa.gr).

Changes

We will update this privacy policy if the data processing or the legal situation changes.